Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
angiolillo
35 days ago
|
parent
|
context
|
favorite
| on:
FFmpeg to Google: Fund us or stop sending bugs
> Providing a real CVE is a contribution, not a burden.
Isn't a real CVE (like any bug report) both a contribution and a burden?
SR2Z
35 days ago
|
next
[–]
Only if you subscribe to the "if we stop testing, the number of cases will drop!" philosophy.
arcfour
34 days ago
|
prev
[–]
It's not fair to classify it as a burden; it existed anyways, but now you have the work/issue identified.
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
Isn't a real CVE (like any bug report) both a contribution and a burden?